8654d9b1b7590119df8211c41fbf18d654c351f3ecd1a9dae7ac68f04f4aac2d

General

Target

8654d9b1b7590119df8211c41fbf18d654c351f3ecd1a9dae7ac68f04f4aac2d
Size

66KB
MD5

8178e633ba3b385263eeaa59bf3242c0
SHA1

8f2ead2cf31473cdb8c0fcd8021a908520868e90
SHA256

8654d9b1b7590119df8211c41fbf18d654c351f3ecd1a9dae7ac68f04f4aac2d
SHA512

814eb13153192e7d7338ad98af6bc18a8892a029eff2b06f9c9ff8028a05182686828fef3d5ef7a72f996540231dd3ae6a48377b2bcf212f154add045a72541c
SSDEEP

1536:gJsdXpznF0361HK/ruzbuf8cImU28Ri/7CLYsG:QsdXpkYHK/Czg8Rhi/eLYs

Score

N/A

Malware Config

Signatures

Files

8654d9b1b7590119df8211c41fbf18d654c351f3ecd1a9dae7ac68f04f4aac2d
.exe windows x86

674b81c1eec7ab7b1ae66212855e079d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
GetStartupInfoA
GetModuleHandleW
Sleep
GetSystemTime
MultiByteToWideChar
HeapAlloc
GetCurrentThreadId
GetOEMCP
GetModuleHandleA
GlobalUnlock
SetConsoleCP
GetModuleFileNameA
GetVersionExA
GetACP
VirtualFree
lstrlenW
lstrcmpW
EnterCriticalSection
SetEnvironmentVariableA
ExitProcess
GetCurrentProcessId
LocalFree
SetStdHandle
HeapFree
GetCommandLineA
InterlockedIncrement
RaiseException
WriteFile
GetLastError
SetHandleCount
FreeEnvironmentStringsW
GetLocalTime

gdi32

SetBkColor

user32

GetSysColor
UnregisterClassA
LoadCursorA
KillTimer
GetScrollInfo
OffsetRect
EnumChildWindows
GetCursorPos
GetMessageW
DrawTextW

msvcrt

malloc
_XcptFilter
_adjust_fdiv
memcpy

lz32

LZClose

version

GetFileVersionInfoSizeW

ole32

StgSetTimes
CoUninitialize

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

674b81c1eec7ab7b1ae66212855e079d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

user32

msvcrt

lz32

version

ole32

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 2KB - Virtual size: 8KB

.data Size: 52KB - Virtual size: 85KB

.reloc Size: 512B - Virtual size: 132B

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 2KB - Virtual size: 8KB

.data
Size: 52KB - Virtual size: 85KB

.reloc
Size: 512B - Virtual size: 132B